
Zoek.exe v5.0.0.1 Updated 28-November-2015
Tool run by Cris on di 01/12/2015 at 17:52:25,49.
Microsoft Windows 10 Home 10.0.10586  x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Cris\Desktop\zoek.exe [Scan all users] [Script inserted] [Checkboxes used]

==== System Restore Info ======================

1/12/2015 17:53:30 Zoek.exe System Restore Point Created Successfully.

==== Empty Folders Check ======================

C:\Users\Arthur\AppData\Local\ActiveSync deleted successfully
C:\Users\Arthur\AppData\Local\VirtualStore deleted successfully
C:\Users\Cris\AppData\Local\ActiveSync deleted successfully
C:\Users\Veronique\AppData\Local\ActiveSync deleted successfully
C:\Users\Veronique\AppData\Local\VirtualStore deleted successfully

==== Deleting CLSID Registry Keys ======================


==== Deleting CLSID Registry Values ======================


==== Installed Programs ======================

64 Bit HP CIO Components Installer  
7-Zip 15.05 beta x64  
Adobe Flash Player 19 NPAPI  
Adobe Reader XI (11.0.13) - Nederlands  
Adobe Refresh Manager  
AIO_Scan  
Apple Application Support (32-bit)  
Apple Application Support (64-bit)  
Apple Mobile Device Support  
Apple Software Update  
Audacity 2.1.0  
AVG  
AVG 2016  
AVG Protection  
Bonjour  
BufferChm  
C6200  
C6200_Help  
Canon Easy-WebPrint EX  
Canon Hulpprogramma Snelkiezen  
Canon IJ Network Scanner Selector EX  
Canon IJ Network Tool  
Canon IJ Scan Utility  
Canon MX920 series MP Drivers  
Canon MX920 series On-screen Manual  
Canon My Image Garden  
Canon My Image Garden Design Files  
Canon My Printer  
Canon Quick Menu  
Copy  
CutePDF Writer 3.0  
Destinations  
DeviceDiscovery  
DocProc  
Dropbox  
Fax  
FMW 1  
Fotosizer 2.09  
Gebruikersregistratie voor Canon MX920 series  
GPBaseService2  
HP Customer Participation Program 13.0  
HP Imaging Device Functions 13.0  
HP Photosmart All-In-One Driver Software 13.0 Rel. 2  
HP Photosmart Essential 3.5  
HP Smart Web Printing 4.51  
HP Solution Center 13.0  
HP Update  
HPDiagnosticAlert  
HPPhotoGadget  
HPPhotoSmartDiscLabel_PaperLabel  
HPPhotoSmartDiscLabel_PrintOnDisc  
HPPhotoSmartDiscLabelContent1  
hpphotosmartdisclabelplugin  
HPPhotosmartEssential  
HPProductAssistant  
HPSSupply  
iCloud  
Intel(R) Graphics Media Accelerator Driver  
iTunes  
Java 8 Update 66  
Java Auto Updater  
LAME v3.99.3 (for Windows)  
MarketResearch  
Microsoft .NET Framework 4.5.2  
Microsoft .NET Framework 4.5.2 (NLD)  
Microsoft DVD App Installation for Microsoft.WindowsDVDPlayer_2019.6.13291.0_neutral_~_8wekyb3d8bbwe (x64)  
Microsoft Office 365 - nl-nl  
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161  
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161  
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219  
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219  
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030  
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030  
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030  
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030  
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030  
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030  
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005  
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005  
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005  
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005  
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005  
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005  
Mozilla Firefox 42.0 (x86 nl)  
Mozilla Maintenance Service  
Mozilla Thunderbird 38.3.0 (x86 nl)  
MSXML 4.0 SP2 (KB954430)  
MSXML 4.0 SP2 (KB973688)  
Network64  
Nikon Message Center 2  
Nikon Movie Editor  
OCR Software by I.R.I.S. 13.0  
Office 15 Click-to-Run Extensibility Component  
Office 15 Click-to-Run Licensing Component  
Office 15 Click-to-Run Localization Component  
Picture Control Utility x64  
PS_AIO_02_ProductContext  
PS_AIO_02_Software  
PS_AIO_02_Software_Min  
PuTTY version 0.63  
QuickTime 7  
Serato DJ   
Shop for HP Supplies  
SmartWebPrinting  
SolutionCenter  
Spotify  
Status  
Toolbox  
TrayApp  
Trendnet USBKVM Switcher  
uMark 5  
UnloadSupport  
ViewNX 2  
Visual Studio 2012 x64 Redistributables  
Visual Studio 2012 x86 Redistributables  
VLC media player  
WebReg  

==== Running Processes ======================

C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Program Files (x86)\AVG\Av\avgwdsvcx.exe
C:\WINDOWS\SysWOW64\svchost.exe
C:\Users\Cris\AppData\Roaming\Spotify\SpotifyWebHelper.exe
C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
C:\Users\Cris\AppData\Local\Microsoft\OneDrive\OneDrive.exe
C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe
C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files (x86)\AVG\Av\avgui.exe
C:\Program Files (x86)\Trendnet\USBKVM Switcher\USBKVM.exe
C:\WINDOWS\SysWOW64\ctfmon.exe
C:\Users\Cris\AppData\Roaming\Dropbox\bin\Dropbox.exe
C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE
C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe
C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\AVG\Framework\Common\avguix.exe
C:\Program Files (x86)\Microsoft Office\Root\VFS\ProgramFilesCommonX86\Microsoft Shared\OFFICE16\CSISYNCCLIENT.EXE
C:\WINDOWS\sysWOW64\wbem\wmiprvse.exe
C:\Program Files (x86)\Canon\Quick Menu\CNQMUPDT.EXE
C:\Program Files (x86)\Canon\Quick Menu\CNQMSWCS.exe
C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSTE08.exe
C:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe
C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe
C:\Users\Cris\Desktop\zoek.exe
C:\WINDOWS\SysWOW64\cmd.exe
C:\WINDOWS\SysWOW64\cmd.exe
C:\WINDOWS\SysWOW64\cmd.exe
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe

==== Deleting Services ======================


==== Registry Fix Code ======================

Windows Registry Editor Version 5.00

Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}] 

==== Registry Fix Code x64 ======================

Windows Registry Editor Version 5.00

[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}] 
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run] 
"vProt"=- 

==== Deleting Files \ Folders ======================

C:\Program Files (x86)\AVG Web TuneUp not found
C:\Program Files (x86)\Common Files\AVG Secure Search not found

==== System Specs ======================

Windows: Windows Version 6.2 (Build 9200)
Memory (RAM): 4086 MB
CPU Info: Intel(R) Core(TM)2 Duo CPU     T9300  @ 2.50GHz
CPU Speed: 2545,0 MHz
Sound Card: Luidsprekers (High Definition A | 
Display Adapters: Mobile Intel(R) 965 Express Chipset Family (Microsoft Corporation - WDDM 1.1) | Mobile Intel(R) 965 Express Chipset Family (Microsoft Corporation - WDDM 1.1)
Monitors: 1x; SyncMaster 2043NW/2043NWX | 
Screen Resolution: 1680 X 1050 - 32 bit
Network: Network Present
Network Adapters: Broadcom NetXtreme 57xx Gigabit Controller | Intel(R) PRO/Wireless 3945ABG Network Connection
CD / DVD Drives: 1x (E: | ) E: TSSTcorpDVD+-RW TS-L632H
Ports: COM1 | COM3 LPT1
Mouse: 3 Button Wheel Mouse Present
Hard Disks: C:  72,8GB | D:  150,3GB
Hard Disks - Free: C:  22,3GB | D:  65,2GB
Manufacturer *: Dell Inc.
BIOS Info: AT/AT COMPATIBLE | 11/24/08 | DELL   - 27d80b18
Time Zone: Romance (standaardtijd)
Motherboard *: Dell Inc. 0KU184
Country: Belgi‰ 
Language: NLB 

==== System Specs (Software) ======================

Default Browser: Firefox	42.0
Internet Explorer Version: 11.11.10586.0 
Mozilla Firefox version: 42.0 (x86 nl)
Adobe Reader version: 11.0.13.17
Sun Java version: 1.8.0_66 (32-bit) 
Sun Java version: 1.8.0_66 (64-bit) 
Flash Player version: 19.0.0.245

==== Files Recently Created / Modified ======================

====== C:\WINDOWS ====
2015-11-16 23:36:18	C7B7CF4CEFBEE3209C864419D1CB31C9	67584	--s-a-w-	C:\WINDOWS\bootstat.dat
====== C:\Users\Cris\AppData\Local\Temp ====
====== Java Cache =====
====== C:\WINDOWS\SysWOW64 =====
2015-11-26 18:10:15	BEFAC095C4E511243E91B1F916C243A7	704352	----a-w-	C:\WINDOWS\SysWOW64\WWAHost.exe
2015-11-26 18:10:15	ADAF3873B0A29C4AFC0D8B89C3485A94	227840	----a-w-	C:\WINDOWS\SysWOW64\deviceaccess.dll
2015-11-18 22:11:23	9E57FF10D37B672B8781BAF92DB00A8B	9918976	----a-w-	C:\WINDOWS\SysWOW64\twinui.dll
2015-11-18 22:11:21	F2D9AB28744983980E6BCE08DA077528	21125408	----a-w-	C:\WINDOWS\SysWOW64\shell32.dll
2015-11-18 22:11:19	0A23F786A551A70B66688C70AFD491E1	13017088	----a-w-	C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2015-11-18 22:11:18	C9E25AB152E9E111F2820AFC6C89B641	2179584	----a-w-	C:\WINDOWS\SysWOW64\mfcore.dll
2015-11-18 22:11:18	9D30ED8C7F49B776AE0581FA5464CD44	1707008	----a-w-	C:\WINDOWS\SysWOW64\ActiveSyncProvider.dll
2015-11-18 22:11:18	8BAD6657817E0960C7CB6026323828A1	511320	----a-w-	C:\WINDOWS\SysWOW64\mf.dll
2015-11-18 22:11:17	F2D2E8091D0929884E6A86AFD9981E2F	2001408	----a-w-	C:\WINDOWS\SysWOW64\twinui.appcore.dll
2015-11-18 22:11:17	4117B68662DD4476D32B28CED9CE0FE0	2918808	----a-w-	C:\WINDOWS\SysWOW64\iertutil.dll
2015-11-18 22:11:17	3695C67045D09215EF0AF4C401D23D25	2064384	----a-w-	C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2015-11-18 22:11:16	D0693220928997E1DD513B261AF86308	454056	----a-w-	C:\WINDOWS\SysWOW64\AudioEng.dll
2015-11-18 22:11:16	CFF6561FE6740E23FBFE0FF99C8A48B7	409088	----a-w-	C:\WINDOWS\SysWOW64\StoreAgent.dll
2015-11-18 22:11:16	9C58CC40F82DF28B3C0B04EA2AC8F99F	116728	----a-w-	C:\WINDOWS\SysWOW64\mfps.dll
2015-11-18 22:11:16	89F3F69C9996D5BCC879C664BF74A4E2	675064	----a-w-	C:\WINDOWS\SysWOW64\dcomp.dll
2015-11-18 22:11:16	31DE6A034E8BBA043CB2F4612033C12A	296488	----a-w-	C:\WINDOWS\SysWOW64\policymanager.dll
2015-11-18 22:11:15	EF22B84131DB17D40D523F649CAD31D2	366224	----a-w-	C:\WINDOWS\SysWOW64\AUDIOKSE.dll
2015-11-18 22:11:15	EBB01B0223DBB9660E4FFB35854D69BF	400896	----a-w-	C:\WINDOWS\SysWOW64\winspool.drv
2015-11-18 22:11:15	AD2E3CC2771EADB0605CC0FAE73EAA45	405048	----a-w-	C:\WINDOWS\SysWOW64\AudioSes.dll
2015-11-18 22:11:15	4928A84450E64625366CA7EABACAE779	382464	----a-w-	C:\WINDOWS\SysWOW64\mfmkvsrcsnk.dll
2015-11-18 22:11:15	1E7B13CDBA9D57D2BF54A7501FB17376	586080	----a-w-	C:\WINDOWS\SysWOW64\wimgapi.dll
2015-11-18 22:11:14	A4CC1E8330E839AA619978E61AEEEAC4	73360	----a-w-	C:\WINDOWS\SysWOW64\remoteaudioendpoint.dll
2015-11-18 22:11:14	123BD3D4504BB548A823152EAC57DE00	32040	----a-w-	C:\WINDOWS\SysWOW64\mfpmp.exe
2015-11-18 22:11:11	BC6B60847CDEFFB3DE3AA394366881DF	490496	----a-w-	C:\WINDOWS\SysWOW64\Windows.UI.dll
2015-11-18 22:11:11	B13BE7A31C732B5773FDF51FB140B614	334336	----a-w-	C:\WINDOWS\SysWOW64\bcastdvr.exe
2015-11-18 22:11:11	AC742BB0B79CD4C535E6A317FD4A18A8	315904	----a-w-	C:\WINDOWS\SysWOW64\Windows.Internal.Bluetooth.dll
2015-11-18 22:11:10	F7F009E10E52C760EF48D2AD7E4D892E	29696	----a-w-	C:\WINDOWS\SysWOW64\LaunchWinApp.exe
2015-11-18 22:11:10	D52DBC4E0729FF2E8A623F33687468BF	160768	----a-w-	C:\WINDOWS\SysWOW64\InstallAgent.exe
2015-11-18 22:11:10	B1F01FDE71DF53B2BBBB6DA9629788B0	1268736	----a-w-	C:\WINDOWS\SysWOW64\Windows.UI.Xaml.Resources.dll
2015-11-18 22:11:10	75F7D82383D8CF10D5999874993A2EF5	27136	----a-w-	C:\WINDOWS\SysWOW64\bcastdvr.proxy.dll
2015-11-18 22:11:10	2AF0E5217FE677C29669E0243F28D64F	70656	----a-w-	C:\WINDOWS\SysWOW64\AppCapture.dll
====== C:\WINDOWS\SysWOW64\drivers =====
====== C:\WINDOWS\Sysnative =====
2015-11-26 18:10:15	CA8714FB5AF893D7EF386685AFC26E62	870400	----a-w-	C:\WINDOWS\Sysnative\modernexecserver.dll
2015-11-26 18:10:15	ABC346A1CD915DEE6231BB4A7F0B96EC	204800	----a-w-	C:\WINDOWS\Sysnative\Microsoft-Windows-AppModelExecEvents.dll
2015-11-26 18:10:15	5E7C875662B05B28E899F0C59B549645	286720	----a-w-	C:\WINDOWS\Sysnative\deviceaccess.dll
2015-11-26 18:10:15	121C4B3ED671715017C8A37A8F816F06	809312	----a-w-	C:\WINDOWS\Sysnative\WWAHost.exe
2015-11-18 22:11:26	44699ED0B4D39D109D1BAEEF0DB66A9E	22572632	----a-w-	C:\WINDOWS\Sysnative\shell32.dll
2015-11-18 22:11:25	0C4284C73435BBB2671A79CF7560AD41	16984064	----a-w-	C:\WINDOWS\Sysnative\Windows.UI.Xaml.dll
2015-11-18 22:11:22	445E792DB399A2DA611B1F3C9DC6070D	11545088	----a-w-	C:\WINDOWS\Sysnative\twinui.dll
2015-11-18 22:11:20	720089B5145468B8EC05707D3262D4E3	2544264	----a-w-	C:\WINDOWS\Sysnative\mfcore.dll
2015-11-18 22:11:19	85031015C1F1B9A7DAA002DAAEE341AA	2444288	----a-w-	C:\WINDOWS\Sysnative\twinui.appcore.dll
2015-11-18 22:11:18	E1014F12F58188114A95EDC5E2C70D5F	2587136	----a-w-	C:\WINDOWS\Sysnative\MFMediaEngine.dll
2015-11-18 22:11:18	CB5E7C32FDF2D4B5E4D7FEE10E75F641	7476576	----a-w-	C:\WINDOWS\Sysnative\ntoskrnl.exe
2015-11-18 22:11:18	8109C3D1CFDC7AE78605D8F3EA4EAA20	586208	----a-w-	C:\WINDOWS\Sysnative\mf.dll
2015-11-18 22:11:17	AD37B56D53795944240011FF4EEBBD30	911648	----a-w-	C:\WINDOWS\Sysnative\dcomp.dll
2015-11-18 22:11:17	779B8174F8C0362A12C242D487AAD392	3670832	----a-w-	C:\WINDOWS\Sysnative\iertutil.dll
2015-11-18 22:11:17	224B2012CE99AB8E7EF7DC0A799344E1	914944	----a-w-	C:\WINDOWS\Sysnative\usermgr.dll
2015-11-18 22:11:17	161665818548A04A036C08FE75FCCD6B	1998848	----a-w-	C:\WINDOWS\Sysnative\ActiveSyncProvider.dll
2015-11-18 22:11:16	FAC1E762CB49992381691B00D2069B3E	1063424	----a-w-	C:\WINDOWS\Sysnative\audiosrv.dll
2015-11-18 22:11:16	EF94C4BB5DDCEB9F0A092122582CF4E5	516544	----a-w-	C:\WINDOWS\Sysnative\AudioEng.dll
2015-11-18 22:11:16	DD723E3E44BBD7A1B94D8914B7E72549	623616	----a-w-	C:\WINDOWS\Sysnative\PhoneProviders.dll
2015-11-18 22:11:16	C66D5ABBFAE385615407A90158AADB2B	292352	----a-w-	C:\WINDOWS\Sysnative\provengine.dll
2015-11-18 22:11:16	C59382D6044DF9104CA7375DFABBACCC	1212416	----a-w-	C:\WINDOWS\Sysnative\wwansvc.dll
2015-11-18 22:11:16	BDB36F389EBE038A65BB6D111A45C180	497664	----a-w-	C:\WINDOWS\Sysnative\mfmkvsrcsnk.dll
2015-11-18 22:11:16	9F465D3AD1DE2AB4EBCA0B514B8AD608	286208	----a-w-	C:\WINDOWS\Sysnative\provhandlers.dll
2015-11-18 22:11:16	226BFF5829028C6809EF4D369221103F	245848	----a-w-	C:\WINDOWS\Sysnative\mfps.dll
2015-11-18 22:11:16	1083375C70D529AA1C8224E13D9E6F40	334736	----a-w-	C:\WINDOWS\Sysnative\policymanager.dll
2015-11-18 22:11:16	02718A3260FCF64A66DC172AB66116CB	543232	----a-w-	C:\WINDOWS\Sysnative\StoreAgent.dll
2015-11-18 22:11:15	DA81241A3493CD3B7EEF3AFD6BBE38B6	92352	----a-w-	C:\WINDOWS\Sysnative\acmigration.dll
2015-11-18 22:11:15	82EDCF9C603F3FA09AAAACA82D34E74E	450560	----a-w-	C:\WINDOWS\Sysnative\Windows.Internal.Bluetooth.dll
2015-11-18 22:11:15	81785D31BEB7C741BB23BE0CB98E691F	536768	----a-w-	C:\WINDOWS\Sysnative\AudioSes.dll
2015-11-18 22:11:15	80BF2990E01E774D64F6E13F30661942	162304	----a-w-	C:\WINDOWS\Sysnative\tetheringservice.dll
2015-11-18 22:11:15	7B106C453D6EF1A32F8669AD503E21BB	517632	----a-w-	C:\WINDOWS\Sysnative\winspool.drv
2015-11-18 22:11:14	F5DC166DC9D533651B83B83CD70FD14C	88392	----a-w-	C:\WINDOWS\Sysnative\remoteaudioendpoint.dll
2015-11-18 22:11:14	C46FC25D2742C6426F6581A4C59331D9	35656	----a-w-	C:\WINDOWS\Sysnative\mfpmp.exe
2015-11-18 22:11:14	B9A74283BD46350F2A32962C1B16225A	369912	----a-w-	C:\WINDOWS\Sysnative\audiodg.exe
2015-11-18 22:11:14	66312F4AFEFB1AE0B80051F8A5E5B26B	698208	----a-w-	C:\WINDOWS\Sysnative\wimgapi.dll
2015-11-18 22:11:14	36208F250EE9B93B87AD6384237373A9	110032	----a-w-	C:\WINDOWS\Sysnative\EncDump.dll
2015-11-18 22:11:13	BA45A9F29AB13A0E66BAABF9D7C30B70	523616	----a-w-	C:\WINDOWS\Sysnative\wimserv.exe
2015-11-18 22:11:12	FE808DE33D79F2ACB8757EE544615626	414720	----a-w-	C:\WINDOWS\Sysnative\bcastdvr.exe
2015-11-18 22:11:12	95AF774B7D20C3006DC0AC9AEDF48655	674816	----a-w-	C:\WINDOWS\Sysnative\Windows.UI.dll
2015-11-18 22:11:12	89E74EC4422905377D45D58FD2832D02	408128	----a-w-	C:\WINDOWS\Sysnative\AUDIOKSE.dll
2015-11-18 22:11:12	4D9E69B803DFA70981BC1853AB930EF6	192000	----a-w-	C:\WINDOWS\Sysnative\provisioningcsp.dll
2015-11-18 22:11:11	E15B5C1DFD00E795996B7F44BD5FBC2A	231936	----a-w-	C:\WINDOWS\Sysnative\KnobsCore.dll
2015-11-18 22:11:11	8B362AFF26AFF41CC5ED6A890E9255F8	165376	----a-w-	C:\WINDOWS\Sysnative\provdatastore.dll
2015-11-18 22:11:11	890BF20BDF500E4E84720EA84448EDDF	275456	----a-w-	C:\WINDOWS\Sysnative\AudioEndpointBuilder.dll
2015-11-18 22:11:11	71B94A84934AA3DA61378C4121523FEA	86528	----a-w-	C:\WINDOWS\Sysnative\AppCapture.dll
2015-11-18 22:11:11	6D04648D2E3F42A295B6D080A948E9BA	163328	----a-w-	C:\WINDOWS\Sysnative\provops.dll
2015-11-18 22:11:11	0FF72DE09330460C64D791FDAA4E6753	75264	----a-w-	C:\WINDOWS\Sysnative\wwanprotdim.dll
2015-11-18 22:11:11	072E1B2CBBC2CF85D02E5CE4761F7B43	77312	----a-w-	C:\WINDOWS\Sysnative\ProvPluginEng.dll
2015-11-18 22:11:10	FBEFDA259F6254B6590956753421D387	89600	----a-w-	C:\WINDOWS\Sysnative\NFCProvisioningPlugin.dll
2015-11-18 22:11:10	F03B1F1E52289E7772A9069BF0F548F2	1268736	----a-w-	C:\WINDOWS\Sysnative\Windows.UI.Xaml.Resources.dll
2015-11-18 22:11:10	E104F46B2E0C4F760382CF95E248E0AD	43520	----a-w-	C:\WINDOWS\Sysnative\bcastdvr.proxy.dll
2015-11-18 22:11:10	A1F43B152956EB72F687373A76DE40EE	161792	----a-w-	C:\WINDOWS\Sysnative\DeviceCensus.exe
2015-11-18 22:11:10	9FCC3D4817CCA5BCEF1FB4B14E523EBC	78336	----a-w-	C:\WINDOWS\Sysnative\BarcodeProvisioningPlugin.dll
2015-11-18 22:11:10	87A8DD15B7DEAC51916358250E5BC7C5	122368	----a-w-	C:\WINDOWS\Sysnative\KnobsCsp.dll
2015-11-18 22:11:10	722ACEC7B2A71664C94130D1FA924F73	198656	----a-w-	C:\WINDOWS\Sysnative\InstallAgent.exe
2015-11-18 22:11:10	559E4E19F481FBB9AF622E23772533CC	52736	----a-w-	C:\WINDOWS\Sysnative\RemovableMediaProvisioningPlugin.dll
2015-11-18 22:11:10	3DF7BD7E0E0CFCF8D8856B639FD46C3C	30720	----a-w-	C:\WINDOWS\Sysnative\tetheringconfigsp.dll
2015-11-18 22:11:10	3690FAA19C6D3C68C033D0E5CB3BDB03	28160	----a-w-	C:\WINDOWS\Sysnative\Windows.Management.Provisioning.ProxyStub.dll
2015-11-18 22:11:10	25C9F417FA6FE9073392BD34630A89B4	17408	----a-w-	C:\WINDOWS\Sysnative\IcsEntitlementHost.exe
2015-11-18 22:11:10	233BA5B1A277D0A42E432E9A9F43EF7A	37376	----a-w-	C:\WINDOWS\Sysnative\LaunchWinApp.exe
2015-11-18 22:11:10	1A9A77ACDAC29C39F50D2A492FD0DB16	87040	----a-w-	C:\WINDOWS\Sysnative\tzautoupdate.dll
2015-11-18 22:11:10	0161DABC5CDB2BE6D0B91BEB5386B47D	52736	----a-w-	C:\WINDOWS\Sysnative\tetheringclient.dll
2015-11-18 22:11:10	01605124DA346314F07656A31CF805EE	56320	----a-w-	C:\WINDOWS\Sysnative\provtool.exe
====== C:\WINDOWS\Sysnative\drivers =====
2015-11-18 22:11:12	EF536C54AB9281FDC4E83B07279FCFC4	35680	----a-w-	C:\WINDOWS\Sysnative\drivers\wimmount.sys
2015-11-16 23:32:39	91D3F2A6253EF83EFBD7903028F58C4D	118624	----a-w-	C:\WINDOWS\Sysnative\drivers\tdx.sys
2015-11-16 23:32:39	70148EFA9A562E7185B75BBE7D376BF7	578912	----a-w-	C:\WINDOWS\Sysnative\drivers\afd.sys
====== C:\WINDOWS\Tasks ======
====== C:\WINDOWS\Temp ======
======= C:\Program Files =====
2015-11-16 23:39:43	--------	d-----w-	C:\Program Files\Common Files\SpeechEngines
2015-11-16 23:30:51	--------	d-----w-	C:\Program Files\Reference Assemblies
2015-11-16 23:30:51	--------	d-----w-	C:\Program Files\MSBuild
2015-11-15 18:54:17	--------	d---a-w-	C:\Program Files\iTunes
2015-11-15 18:54:17	--------	d-----w-	C:\Program Files\iPod
2015-11-15 17:37:21	--------	d-----w-	C:\Program Files\Microsoft Office 15
2015-11-15 14:37:21	--------	d-----w-	C:\Program Files\trend micro
======= C:\PROGRA~2 =====
2015-11-16 23:39:44	--------	d-----w-	C:\PROGRA~2\COMMON~1\SpeechEngines
2015-11-16 23:30:51	--------	d-----w-	C:\PROGRA~2\Reference Assemblies
2015-11-16 23:30:51	--------	d-----w-	C:\PROGRA~2\MSBuild
2015-11-16 22:06:03	--------	d-----w-	C:\PROGRA~2\COMMON~1\Java
2015-11-16 22:05:34	--------	d-----w-	C:\PROGRA~2\Java
2015-11-15 18:54:17	--------	d-----w-	C:\PROGRA~2\iTunes
2015-11-04 19:57:59	--------	d---a-w-	C:\PROGRA~2\Lame For Audacity
2015-11-04 19:54:38	--------	d---a-w-	C:\PROGRA~2\Audacity
======= C: =====
2015-11-16 23:27:08	D41D8CD98F00B204E9800998ECF8427E	0	---ha-w-	C:\$WINRE_BACKUP_PARTITION.MARKER
====== C:\Users\Cris\AppData\Roaming ======
2015-11-29 22:47:05	--------	d-----w-	C:\Users\Arthur\AppData\Local\Comms
2015-11-29 22:44:52	--------	d-----w-	C:\Users\Arthur\AppData\Local\CEF
2015-11-29 22:01:43	--------	d-----w-	C:\Users\Veronique\AppData\Local\Mozilla
2015-11-29 14:19:10	--------	d-----w-	C:\Users\Veronique\AppData\Local\Comms
2015-11-29 14:02:27	--------	d-----w-	C:\Users\Veronique\AppData\Local\MicrosoftEdge
2015-11-23 23:35:50	--------	d-----w-	C:\Users\Cris\AppData\Temp
2015-11-23 23:35:50	--------	d-----w-	C:\Users\Cris\AppData\Local\Temp
2015-11-21 17:31:10	--------	d-s---w-	C:\WINDOWS\serviceprofiles\networkservice\AppData\LocalLow
2015-11-21 17:28:34	--------	d-----w-	C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\AvgSetupLog
2015-11-21 17:28:34	--------	d-----w-	C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Avg
2015-11-21 17:28:31	--------	d-----w-	C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Avg
2015-11-18 23:03:46	--------	d-----w-	C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\DataSharing
2015-11-17 00:01:18	--------	d-----w-	C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Microsoft
2015-11-16 23:47:55	--------	d-----w-	C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Packages
2015-11-16 23:43:11	--------	d-----w-	C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools
2015-11-16 23:43:11	--------	d-----w-	C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Accessibility
2015-11-16 23:43:11	--------	d-----w-	C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools
2015-11-16 23:43:11	--------	d-----w-	C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Accessibility
2015-11-16 23:37:46	--------	d-s---r-	C:\Users\Veronique\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell
2015-11-16 23:37:46	--------	d-----w-	C:\Users\Veronique\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2015-11-16 23:37:46	--------	d-----w-	C:\Users\Veronique\AppData\Roaming
2015-11-16 23:37:46	--------	d-----w-	C:\Users\Veronique\AppData\Local\Temp
2015-11-16 23:37:46	--------	d-----w-	C:\Users\Veronique\AppData\Local\Microsoft
2015-11-16 23:37:46	--------	d-----w-	C:\Users\Veronique\AppData\Local
2015-11-16 23:37:46	--------	d-----r-	C:\Users\Veronique\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-11-16 23:37:46	--------	d-----r-	C:\Users\Veronique\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-11-16 23:37:46	--------	d-----r-	C:\Users\Veronique\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-11-16 23:37:46	--------	d-----r-	C:\Users\Veronique\AppData\Roaming\Microsoft\Windows\Start Menu\Programs
2015-11-16 23:37:45	--------	d-s---r-	C:\Users\Gast\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell
2015-11-16 23:37:45	--------	d-s---r-	C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell
2015-11-16 23:37:45	--------	d-s---r-	C:\Users\Arthur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell
2015-11-16 23:37:45	--------	d-----w-	C:\Users\Gast\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2015-11-16 23:37:45	--------	d-----w-	C:\Users\Gast\AppData\Roaming\Microsoft\Windows\Start Menu\Programs
2015-11-16 23:37:45	--------	d-----w-	C:\Users\Gast\AppData\Roaming
2015-11-16 23:37:45	--------	d-----w-	C:\Users\Gast\AppData\Local\Temp
2015-11-16 23:37:45	--------	d-----w-	C:\Users\Gast\AppData\Local\Microsoft
2015-11-16 23:37:45	--------	d-----w-	C:\Users\Gast\AppData\Local
2015-11-16 23:37:45	--------	d-----w-	C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2015-11-16 23:37:45	--------	d-----w-	C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs
2015-11-16 23:37:45	--------	d-----w-	C:\Users\DefaultAppPool\AppData\Roaming
2015-11-16 23:37:45	--------	d-----w-	C:\Users\DefaultAppPool\AppData\Local\Temp
2015-11-16 23:37:45	--------	d-----w-	C:\Users\DefaultAppPool\AppData\Local\Microsoft
2015-11-16 23:37:45	--------	d-----w-	C:\Users\DefaultAppPool\AppData\Local
2015-11-16 23:37:45	--------	d-----w-	C:\Users\Cris\AppData\Roaming
2015-11-16 23:37:45	--------	d-----w-	C:\Users\Cris\AppData\Local\Microsoft
2015-11-16 23:37:45	--------	d-----w-	C:\Users\Cris\AppData\Local
2015-11-16 23:37:45	--------	d-----w-	C:\Users\Arthur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2015-11-16 23:37:45	--------	d-----w-	C:\Users\Arthur\AppData\Roaming
2015-11-16 23:37:45	--------	d-----w-	C:\Users\Arthur\AppData\Local\Temp
2015-11-16 23:37:45	--------	d-----w-	C:\Users\Arthur\AppData\Local\Microsoft
2015-11-16 23:37:45	--------	d-----w-	C:\Users\Arthur\AppData\Local
2015-11-16 23:37:45	--------	d-----r-	C:\Users\Gast\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-11-16 23:37:45	--------	d-----r-	C:\Users\Gast\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-11-16 23:37:45	--------	d-----r-	C:\Users\Gast\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-11-16 23:37:45	--------	d-----r-	C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-11-16 23:37:45	--------	d-----r-	C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-11-16 23:37:45	--------	d-----r-	C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-11-16 23:37:45	--------	d-----r-	C:\Users\Arthur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-11-16 23:37:45	--------	d-----r-	C:\Users\Arthur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-11-16 23:37:45	--------	d-----r-	C:\Users\Arthur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-11-16 23:37:45	--------	d-----r-	C:\Users\Arthur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs
2015-11-16 23:37:44	--------	d-s---r-	C:\Users\Manon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell
2015-11-16 23:37:44	--------	d-----w-	C:\Users\Manon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2015-11-16 23:37:44	--------	d-----w-	C:\Users\Manon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs
2015-11-16 23:37:44	--------	d-----w-	C:\Users\Manon\AppData\Roaming
2015-11-16 23:37:44	--------	d-----w-	C:\Users\Manon\AppData\Local\Temp
2015-11-16 23:37:44	--------	d-----w-	C:\Users\Manon\AppData\Local\Microsoft
2015-11-16 23:37:44	--------	d-----w-	C:\Users\Manon\AppData\Local
2015-11-16 23:37:44	--------	d-----r-	C:\Users\Manon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-11-16 23:37:44	--------	d-----r-	C:\Users\Manon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-11-16 23:37:44	--------	d-----r-	C:\Users\Manon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-11-16 23:35:48	--------	d-----w-	C:\WINDOWS\serviceprofiles\Localservice\AppData\Local\FontCache
2015-11-16 23:35:31	--------	d-----w-	C:\WINDOWS\serviceprofiles\Localservice\AppData\Roaming
2015-11-16 23:35:31	--------	d-----w-	C:\WINDOWS\serviceprofiles\Localservice\AppData\Local\Temp
2015-11-16 23:35:30	--------	d-----w-	C:\WINDOWS\serviceprofiles\networkservice\AppData\Roaming
2015-11-16 23:35:30	--------	d-----w-	C:\WINDOWS\serviceprofiles\networkservice\AppData\Local\Temp
2015-11-16 23:35:30	--------	d-----w-	C:\WINDOWS\serviceprofiles\networkservice\AppData\Local\Microsoft
2015-11-16 23:35:30	--------	d-----w-	C:\WINDOWS\serviceprofiles\networkservice\AppData\Local
2015-11-16 23:31:49	--------	d-----w-	C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft
2015-11-16 22:03:17	--------	d-----w-	C:\Users\Veronique\AppData\Local\Avg
2015-11-16 22:03:17	--------	d-----w-	C:\Users\Manon\AppData\Local\Avg
2015-11-15 18:16:28	--------	d-----w-	C:\Users\Cris\AppData\Local\OfficeBSCache-MyComputer
2015-11-11 22:49:34	--------	d-----w-	C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools
2015-11-11 22:49:34	--------	d-----w-	C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Accessibility
2015-11-11 11:11:35	--------	d-----w-	C:\Users\Manon\AppData\Local\Comms
2015-11-11 11:03:32	--------	d-----w-	C:\Users\Arthur\AppData\Local\MicrosoftEdge
2015-11-11 10:55:11	--------	d-----w-	C:\Users\Arthur\AppData\Local\Publishers
2015-11-11 10:54:38	--------	d-----w-	C:\Users\Arthur\AppData\Local\Packages
2015-11-11 10:54:37	--------	d-----w-	C:\Users\Arthur\AppData\Local\TileDataLayer
2015-11-11 09:07:30	--------	d-----w-	C:\Users\Manon\AppData\Local\Mozilla
2015-11-11 09:06:09	--------	d-----w-	C:\Users\Manon\AppData\Local\Apple
2015-11-11 09:04:18	--------	d-----w-	C:\Users\Manon\AppData\Local\Publishers
2015-11-11 09:03:40	--------	d-----w-	C:\Users\Manon\AppData\Local\TileDataLayer
2015-11-11 09:03:40	--------	d-----w-	C:\Users\Manon\AppData\Local\Packages
2015-11-08 18:38:06	--------	d-----w-	C:\Users\Cris\AppData\Local\Microsoft Help
2015-11-04 19:54:29	--------	d-----w-	C:\Users\Cris\AppData\Local\Programs
2015-11-01 21:09:28	--------	d-----w-	C:\Users\Cris\AppData\Local\ElevatedDiagnostics
2015-11-01 19:13:27	--------	d-----w-	C:\Users\Cris\AppData\Local\AvgSetupLog
====== C:\Users\Cris ======
2015-11-29 16:09:49	6FC234AD3752E1267B34FB12BCD6718B	20	--sh--w-	C:\Users\Arthur\ntuser.ini
2015-11-29 14:03:10	--------	d-----r-	C:\Users\Veronique\OneDrive
2015-11-29 14:01:05	6FC234AD3752E1267B34FB12BCD6718B	20	--sh--w-	C:\Users\Veronique\ntuser.ini
2015-11-21 17:28:18	--------	d---a-w-	C:\ProgramData\Avg
2015-11-18 22:06:31	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud
2015-11-17 06:06:57	6FC234AD3752E1267B34FB12BCD6718B	20	--sh--w-	C:\Users\Cris\ntuser.ini
2015-11-16 23:37:46	--------	d--h--w-	C:\Users\Veronique\AppData
2015-11-16 23:37:45	--------	d--h--w-	C:\Users\Gast\AppData
2015-11-16 23:37:45	--------	d--h--w-	C:\Users\DefaultAppPool\AppData
2015-11-16 23:37:45	--------	d--h--w-	C:\Users\Cris\AppData
2015-11-16 23:37:45	--------	d--h--w-	C:\Users\Arthur\AppData
2015-11-16 23:37:44	--------	d--h--w-	C:\Users\Manon\AppData
2015-11-16 23:37:19	6AC437C269CB165954B8D10DEC4A2427	4194304	----a-w-	C:\WINDOWS\serviceprofiles\networkservice\msmqlog.bin
2015-11-16 23:37:19	168D093EE2550191C809D3F251EB2D0B	196608	----a-w-	C:\WINDOWS\serviceprofiles\networkservice\msmqlog.bak
2015-11-16 23:35:49	--------	d-----w-	C:\WINDOWS\serviceprofiles\Localservice\winhttp
2015-11-16 23:35:31	--------	d-----w-	C:\WINDOWS\serviceprofiles\Localservice\Saved Games
2015-11-16 23:35:31	--------	d-----r-	C:\WINDOWS\serviceprofiles\Localservice\Videos
2015-11-16 23:35:31	--------	d-----r-	C:\WINDOWS\serviceprofiles\Localservice\Pictures
2015-11-16 23:35:31	--------	d-----r-	C:\WINDOWS\serviceprofiles\Localservice\Music
2015-11-16 23:35:31	--------	d-----r-	C:\WINDOWS\serviceprofiles\Localservice\Links
2015-11-16 23:35:31	--------	d-----r-	C:\WINDOWS\serviceprofiles\Localservice\Favorites
2015-11-16 23:35:31	--------	d-----r-	C:\WINDOWS\serviceprofiles\Localservice\Downloads
2015-11-16 23:35:31	--------	d-----r-	C:\WINDOWS\serviceprofiles\Localservice\Documents
2015-11-16 23:35:31	--------	d-----r-	C:\WINDOWS\serviceprofiles\Localservice\Desktop
2015-11-16 23:35:30	--------	d--h--w-	C:\WINDOWS\serviceprofiles\networkservice\AppData
2015-11-16 23:35:30	--------	d-----w-	C:\WINDOWS\serviceprofiles\networkservice\Saved Games
2015-11-16 23:35:30	--------	d-----r-	C:\WINDOWS\serviceprofiles\networkservice\Videos
2015-11-16 23:35:30	--------	d-----r-	C:\WINDOWS\serviceprofiles\networkservice\Pictures
2015-11-16 23:35:30	--------	d-----r-	C:\WINDOWS\serviceprofiles\networkservice\Music
2015-11-16 23:35:30	--------	d-----r-	C:\WINDOWS\serviceprofiles\networkservice\Links
2015-11-16 23:35:30	--------	d-----r-	C:\WINDOWS\serviceprofiles\networkservice\Favorites
2015-11-16 23:35:30	--------	d-----r-	C:\WINDOWS\serviceprofiles\networkservice\Downloads
2015-11-16 23:35:30	--------	d-----r-	C:\WINDOWS\serviceprofiles\networkservice\Documents
2015-11-16 23:35:30	--------	d-----r-	C:\WINDOWS\serviceprofiles\networkservice\Desktop
2015-11-16 22:05:55	--------	d-----w-	C:\Users\Cris\.oracle_jre_usage
2015-11-16 22:05:52	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2015-11-16 22:05:38	--------	d-----w-	C:\ProgramData\Oracle
2015-11-15 18:54:30	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2015-11-15 17:43:04	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2016-hulpprogramma's
2015-11-11 22:49:34	--------	d-----w-	C:\Users\DefaultAppPool\Saved Games
2015-11-11 22:49:34	--------	d-----r-	C:\Users\DefaultAppPool\Videos
2015-11-11 22:49:34	--------	d-----r-	C:\Users\DefaultAppPool\Pictures
2015-11-11 22:49:34	--------	d-----r-	C:\Users\DefaultAppPool\Music
2015-11-11 22:49:34	--------	d-----r-	C:\Users\DefaultAppPool\Links
2015-11-11 22:49:34	--------	d-----r-	C:\Users\DefaultAppPool\Favorites
2015-11-11 22:49:34	--------	d-----r-	C:\Users\DefaultAppPool\Downloads
2015-11-11 22:49:34	--------	d-----r-	C:\Users\DefaultAppPool\Documents
2015-11-11 22:49:34	--------	d-----r-	C:\Users\DefaultAppPool\Desktop
2015-11-11 10:56:51	--------	d-----r-	C:\Users\Arthur\OneDrive
2015-11-11 09:05:25	--------	d-----r-	C:\Users\Manon\OneDrive

====== C: exe-files ==
2015-12-01 14:16:13	4E95AB8BEB2C8FD53B348EF4AD5121C5	149184	----a-w-	C:\Users\Cris\AppData\Local\Temp\7D9DCDA9-6079-41A0-988C-1C103ABDD2D9\DismHost.exe
2015-12-01 13:34:45	4E95AB8BEB2C8FD53B348EF4AD5121C5	149184	----a-w-	C:\Users\Cris\AppData\Local\Temp\2A2871BB-3B22-4979-8287-41A865B894D8\DismHost.exe
2015-11-29 22:44:50	B8DFD07F94578F69C8CC665469134952	74856	----a-w-	C:\Users\Arthur\AppData\Roaming\Spotify\wow_helper.exe
2015-11-29 22:44:49	781DCED079ABD884DF8CA22B6FA30F05	2541160	----a-w-	C:\Users\Arthur\AppData\Roaming\Spotify\SpotifyWebHelper.exe
2015-11-29 22:44:49	1E9386E3CF138ABE1158B51FFF768BED	1067112	----a-w-	C:\Users\Arthur\AppData\Roaming\Spotify\SpotifyCrashService.exe
2015-11-29 16:11:37	8930D704DC34BB6A8122D1330525FD5E	7904968	----a-w-	C:\Users\Arthur\AppData\Local\Microsoft\OneDrive\17.3.6201.1019_1\OneDriveSetup.exe
2015-11-29 16:11:37	8930D704DC34BB6A8122D1330525FD5E	7904968	----a-w-	C:\Users\Arthur\AppData\Local\Microsoft\OneDrive\17.3.6201.1019\OneDriveSetup.exe
2015-11-29 16:11:16	984BDA28B013EC426501CA40D365FDF0	160960	----a-w-	C:\Users\Arthur\AppData\Local\Microsoft\OneDrive\17.3.6201.1019_1\FileSyncConfig.exe
2015-11-29 16:11:12	96F76F943DF1974E4F08B5B3DE0C028F	175296	----a-w-	C:\Users\Arthur\AppData\Local\Microsoft\OneDrive\17.3.6201.1019_1\FileCoAuth.exe
2015-11-29 16:10:54	2BE3ADFC19F040ECE8CE2C276E104BC6	47634632	----a-w-	C:\Users\Arthur\AppData\Roaming\Spotify\Spotify_new.exe
2015-11-29 14:03:27	8930D704DC34BB6A8122D1330525FD5E	7904968	----a-w-	C:\Users\Veronique\AppData\Local\Microsoft\OneDrive\Update\OneDriveSetup.exe
2015-11-29 14:03:27	8930D704DC34BB6A8122D1330525FD5E	7904968	----a-w-	C:\Users\Veronique\AppData\Local\Microsoft\OneDrive\17.3.6201.1019\OneDriveSetup.exe
2015-11-29 14:03:16	984BDA28B013EC426501CA40D365FDF0	160960	----a-w-	C:\Users\Veronique\AppData\Local\Microsoft\OneDrive\17.3.6201.1019\FileSyncConfig.exe
2015-11-29 14:03:15	96F76F943DF1974E4F08B5B3DE0C028F	175296	----a-w-	C:\Users\Veronique\AppData\Local\Microsoft\OneDrive\17.3.6201.1019\FileCoAuth.exe
2015-11-29 14:03:09	9F2ECA252720B25E8FEC1CAB2984B98D	548552	----a-w-	C:\Users\Veronique\AppData\Local\Microsoft\OneDrive\OneDrive.exe
2015-11-29 11:51:39	4E95AB8BEB2C8FD53B348EF4AD5121C5	149184	----a-w-	C:\Users\Cris\AppData\Local\Temp\BCA15D52-B2CD-4ED4-8A53-3F6878795753\DismHost.exe
2015-11-26 22:56:22	4E95AB8BEB2C8FD53B348EF4AD5121C5	149184	----a-w-	C:\Users\Cris\AppData\Local\Temp\C3B51F66-A8A6-4D50-B4FE-B31A4311AFDB\DismHost.exe
2015-11-26 18:10:15	BEFAC095C4E511243E91B1F916C243A7	704352	----a-w-	C:\Windows\SysWOW64\WWAHost.exe
2015-11-26 18:10:15	121C4B3ED671715017C8A37A8F816F06	809312	----a-w-	C:\Windows\System32\WWAHost.exe
=== C: other files ==
2015-11-29 16:11:08	8CF4163521FDB8E53482003C7EFA7121	5850	----a-w-	C:\Users\Arthur\AppData\Local\Microsoft\OneDrive\17.3.6201.1019_1\CollectOneDriveLogs.bat
2015-11-29 14:03:15	8CF4163521FDB8E53482003C7EFA7121	5850	----a-w-	C:\Users\Veronique\AppData\Local\Microsoft\OneDrive\17.3.6201.1019\CollectOneDriveLogs.bat

==== Startup Registry Enabled ======================

[HKEY_USERS\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"OneDriveSetup"="C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup"

[HKEY_USERS\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"OneDriveSetup"="C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup"

[HKEY_USERS\S-1-5-21-319823001-3227013944-3134471104-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Spotify Web Helper"="C:\Users\Cris\AppData\Roaming\Spotify\SpotifyWebHelper.exe"
"iCloudServices"="C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe"
"ApplePhotoStreams"="C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe"
"OneDrive"="C:\Users\Cris\AppData\Local\Microsoft\OneDrive\OneDrive.exe /background"
"Dropbox Update"="C:\Users\Cris\AppData\Local\Dropbox\Update\DropboxUpdate.exe /c"
"iCloudDrive"="C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"AVG_UI"="C:\Program Files (x86)\AVG\Av\avgui.exe /TRAYONLY"
"CanonQuickMenu"="C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE /logon"
"IJNetworkScannerSelectorEX"="C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe /FORCE"
"QuickTime Task"="C:\Program Files (x86)\QuickTime\QTTask.exe -atboottime"
"hpqSRMon"="C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSRMon.exe"
"HP Software Update"="C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe"
"Nikon Message Center 2"="C:\Program Files (x86)\Nikon\Nikon Message Center 2\NkMC2.exe -s"
"SunJavaUpdateSched"="C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"AvgUi"="C:\Program Files (x86)\AVG\Framework\Common\avguix.exe /fmw.trayonly"

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Spotify Web Helper"="C:\Users\Cris\AppData\Roaming\Spotify\SpotifyWebHelper.exe"
"iCloudServices"="C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe"
"ApplePhotoStreams"="C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe"
"OneDrive"="C:\Users\Cris\AppData\Local\Microsoft\OneDrive\OneDrive.exe /background"
"Dropbox Update"="C:\Users\Cris\AppData\Local\Dropbox\Update\DropboxUpdate.exe /c"
"iCloudDrive"="C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe"

==== Startup Registry Enabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"iTunesHelper"="C:\Program Files\iTunes\iTunesHelper.exe"

==== Task Scheduler Jobs ======================

C:\WINDOWS\tasks\Adobe Flash Player Updater.job --a-------- C:@C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe []
C:\WINDOWS\tasks\DropboxUpdateTaskUserS-1-5-21-319823001-3227013944-3134471104-1001Core.job --a-------- C:\Users\Cris\AppData\Local\Dropbox\Update\DropboxUpdate.exe [20/06/2015 21:02]
C:\WINDOWS\tasks\DropboxUpdateTaskUserS-1-5-21-319823001-3227013944-3134471104-1001UA.job --a-------- C:\Users\Cris\AppData\Local\Dropbox\Update\DropboxUpdate.exe [20/06/2015 21:02]

==== Other Scheduled Tasks ======================

"C:\WINDOWS\SysNative\tasks\Adobe Acrobat Update Task" [C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe]
"C:\WINDOWS\SysNative\tasks\Adobe Flash Player Updater" [C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe]
"C:\WINDOWS\SysNative\tasks\CreateChoiceProcessTask" [C:\Windows\System32\browserchoice.exe]
"C:\WINDOWS\SysNative\tasks\DropboxUpdateTaskUserS-1-5-21-319823001-3227013944-3134471104-1001Core" [C:\Users\Cris\AppData\Local\Dropbox\Update\DropboxUpdate.exe]
"C:\WINDOWS\SysNative\tasks\DropboxUpdateTaskUserS-1-5-21-319823001-3227013944-3134471104-1001UA" [C:\Users\Cris\AppData\Local\Dropbox\Update\DropboxUpdate.exe]
"C:\WINDOWS\SysNative\tasks\Apple\AppleSoftwareUpdate" [C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe]
"C:\WINDOWS\SysNative\tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask" [%systemroot%\system32\sc.exe start osppsvc]

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]
"smartwebprinting@hp.com"="C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3" [06/07/2015 14:44]
[HKEY_CURRENT_USER\Software\Mozilla\Firefox\Extensions]
"smartwebprinting@hp.com"="C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3" [06/07/2015 14:44]

==== Firefox Extensions ======================

ProfilePath: C:\Users\Cris\AppData\Roaming\Mozilla\Firefox\Profiles\6htc8dyh.default
- YouTube to MP3 - %ProfilePath%\extensions\youtube2mp3@mondayx.de.xpi

ProfilePath: C:\Users\Cris\AppData\Roaming\Thunderbird\Profiles\dfgv5gbf.default
- Lightning - %ProfilePath%\extensions\{e2fda1a4-762b-4020-b5ad-a41df1933103}

AppDir: C:\Program Files (x86)\Mozilla Firefox
- Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

==== Firefox Plugins ======================

Profilepath: C:\Users\Cris\AppData\Roaming\Mozilla\Firefox\Profiles\6htc8dyh.default
F114FBA6246530B89DD1E04351E0EAC5	- C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_19_0_0_245.dll -	Shockwave Flash


==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.com/"

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.com/"

==== All HKLM and HKCU SearchScopes ======================

HKLM\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
HKLM\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
HKLM\Wow6432Node\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
HKLM\Wow6432Node\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
HKCU\SearchScopes "DefaultScope"="{8B5D765F-BD64-45A9-B4F0-6EAE585A2F38}"
HKCU\SearchScopes\{012E1000-F331-11DB-8314-0800200C9A66} - http://www.google.com/search?q={searchTerms}
HKCU\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02
HKCU\SearchScopes\{8B5D765F-BD64-45A9-B4F0-6EAE585A2F38} - https://www.google.com/search?q={searchTerms}

==== HijackThis Entries ======================

F2 - REG:system.ini: UserInit=
O2 - BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll
O2 - BHO: Canon Easy-WebPrint EX BHO - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_66\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_66\bin\jp2ssv.dll
O2 - BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O3 - Toolbar: Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll
O4 - HKLM\..\Run: [AVG_UI] "C:\Program Files (x86)\AVG\Av\avgui.exe" /TRAYONLY
O4 - HKLM\..\Run: [CanonQuickMenu] C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE /logon
O4 - HKLM\..\Run: [IJNetworkScannerSelectorEX] C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe /FORCE
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [hpqSRMon] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSRMon.exe
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [Nikon Message Center 2] C:\Program Files (x86)\Nikon\Nikon Message Center 2\NkMC2.exe -s
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [AvgUi] "C:\Program Files (x86)\AVG\Framework\Common\avguix.exe" /fmw.trayonly
O4 - HKCU\..\Run: [Spotify Web Helper] "C:\Users\Cris\AppData\Roaming\Spotify\SpotifyWebHelper.exe"
O4 - HKCU\..\Run: [iCloudServices] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
O4 - HKCU\..\Run: [ApplePhotoStreams] C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
O4 - HKCU\..\Run: [OneDrive] "C:\Users\Cris\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKCU\..\Run: [Dropbox Update] "C:\Users\Cris\AppData\Local\Dropbox\Update\DropboxUpdate.exe" /c
O4 - HKCU\..\Run: [iCloudDrive] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O4 - Startup: Dropbox.lnk = Cris\AppData\Roaming\Dropbox\bin\Dropbox.exe
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: USBKVM Switcher.lnk = C:\Program Files (x86)\Trendnet\USBKVM Switcher\USBKVM.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files (x86)\Microsoft Office\Root\Office16\EXCEL.EXE/3000
O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files (x86)\Microsoft Office\Root\Office16\ONBttnIE.dll/105
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIE.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIELinkedNotes.dll
O9 - Extra button: Toon of verberg HP Smart Web Printing - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: Apple Mobile Device Service - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: AvgAMPS - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\Av\avgamps.exe
O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\Av\avgidsagent.exe
O23 - Service: AVG Service (avgsvc) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe
O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\Av\avgwdsvcx.exe
O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: iPod-service (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @mqutil.dll,-6102 (MSMQ) - Unknown owner - C:\WINDOWS\system32\mqsvc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

==== Empty IE Cache ======================

C:\WINDOWS\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Arthur\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\Cris\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\Cris\AppData\Local\Microsoft\Windows\INetCache\Low\Content.IE5 emptied successfully
C:\Users\Veronique\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Arthur\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
C:\Users\Cris\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
C:\Users\Cris\AppData\Local\Microsoft\Windows\INetCache\Low\IE emptied successfully
C:\Users\Veronique\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully

==== Empty FireFox Cache ======================

C:\Users\Cris\AppData\Local\Mozilla\Firefox\Profiles\6htc8dyh.default\cache2 emptied successfully
C:\Users\Gast\AppData\Local\Mozilla\Firefox\Profiles\sl3qofcw.default\Cache emptied successfully
C:\Users\Gast\AppData\Local\Mozilla\Firefox\Profiles\sl3qofcw.default\cache2 emptied successfully
C:\Users\Manon\AppData\Local\Mozilla\Firefox\Profiles\mmpatztv.default\cache2 emptied successfully
C:\Users\Veronique\AppData\Local\Mozilla\Firefox\Profiles\vx6lk0tu.default\cache2 emptied successfully

==== Empty Chrome Cache ======================

No Chrome User Data found

==== Empty All Flash Cache ======================

No Flash Cache Found

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== C:\zoek_backup content ======================

C:\zoek_backup (files=0 folders=0 0 bytes)

==== Empty Temp Folders ======================

C:\Users\Cris\AppData\Temp emptied successfully
C:\WINDOWS\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\WINDOWS\Temp successfully emptied
C:\Users\Cris\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== EOF on di 01/12/2015 at 18:40:47,44 ======================